CVE-2026-45131 in helm-chartsinformação

Sumário

de MITRE • 01/06/2026

CloudPirates Open Source Helm Charts is a collection of Helm charts. Prior to commit fcf9302, a GitHub Actions workflow (pull-request.yaml) executes attacker-controlled code from fork pull requests in a privileged context, exposing repository secrets including Docker Hub credentials and tokens without requiring maintainer approval. This issue has been patched via commit fcf9302.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

GitHub M

Reservar

08/05/2026

Divulgação

01/06/2026

Moderação

aceite

Entrada

VDB-367684

CPE

pronto

CWE

CWE-94 (confirmado)

CVSS

10.0 (CNA)

EPSS

0.00033

KEV

não

Atividades

muito baixo

Sector

Education, Telecommunication, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-45131
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-45131
CVE Details	https://www.cvedetails.com/cve/CVE-2026-45131/

◂ Voltar Visão Geral Próximo ▸

Want to know what is going to be exploited?

We predict KEV entries!